<div>
<div class="content wysiwyg-content">
I believe we are having spam sent through our Exchange 2007 server. &nbsp;Below is an excerpt from one of the SMTP send logs. &nbsp;I have made a configuration change in our Sonicwall firewall to only allow outbound SMTP port 25 to be used by the Exchange server but I am still seeing in the SMTP send logs messages with a MAIL FROM: &lt;&gt;. &nbsp;Is it possible that the either the Exchange server has a spam bot or that it is being used as an open SMTP relay? &nbsp;I thought SMTP relay was turned off by default. We have been blacklisted only by backscatterer.org at this time. How would I go about trying to figure what the problem is? Thanks. 
 
 
10.0.0.16:25056,85.115.58.190:25,&gt;,MAIL FROM:&lt;&gt; SIZE=11126, 
10.0.0.16:25056,85.115.58.190:25,&gt;,RCPT TO:&lt;lesliedevorah@alfa.com&gt;, 
10.0.0.16:25056,85.115.58.190:25,&lt;,250 2.0.0 Reset state, 
10.0.0.16:25056,85.115.58.190:25,&lt;,250 2.1.0 &lt;&gt;... Sender ok, 
10.0.0.16:25056,85.115.58.190:25,&lt;,250 2.1.5 &lt;lesliedevorah@alfa.com&gt;... Recipient ok, 
10.0.0.16:25056,85.115.58.190:25,&gt;,DATA, 
10.0.0.16:25056,85.115.58.190:25,&lt;,&quot;354 Enter mail, end with &quot;&quot;.&quot;&quot; on a line by itself&quot;, 
10.0.0.16:25056,85.115.58.190:25,&lt;,451 4.3.2 Please try again later, 
10.0.0.16:25056,85.115.58.190:25,&gt;,QUIT,
</div>
</div>

I believe we are having spam sent through our Exchange 2007 server. Below is an excerpt from one of the SMTP send logs. I have made a configuration change in our Sonicwall firewall to only allow outbound SMTP port 25 to be used by the Exchange server but I am still seeing in the SMTP send logs messages with a MAIL FROM: <>. Is it possible that the either the Exchange server has a spam bot or that it is being used as an open SMTP relay? I thought SMTP relay was turned off by default. We have been blacklisted only by backscatterer.org at this time. How would I go about trying to figure what the problem is? Thanks.


10.0.0.16:25056,85.115.58.190:25,>,MAIL FROM:<> SIZE=11126,
10.0.0.16:25056,85.115.58.190:25,>,RCPT TO:<lesliedevorah@alfa.com>,
10.0.0.16:25056,85.115.58.190:25,<,250 2.0.0 Reset state,
10.0.0.16:25056,85.115.58.190:25,<,250 2.1.0 <>... Sender ok,
10.0.0.16:25056,85.115.58.190:25,<,250 2.1.5 <lesliedevorah@alfa.com>... Recipient ok,
10.0.0.16:25056,85.115.58.190:25,>,DATA,
10.0.0.16:25056,85.115.58.190:25,<,"354 Enter mail, end with ""."" on a line by itself",
10.0.0.16:25056,85.115.58.190:25,<,451 4.3.2 Please try again later,
10.0.0.16:25056,85.115.58.190:25,>,QUIT,

SMTP Send Logs and Spam

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.